Thank you NC department of revenue…



I heard on the local news last night that the North Carolina Department of Revenue has lost a laptop that had ~30,000 state taxpayers information on it. Social Security numbers/etc… The report I saw that the state has setup a hotline to “teach citizens about identity theft” and have sent letters to those affected. Thanks… lose a laptop with 30,000 and then teach US about identity theft. How about teaching employees with sensitive information about encryption? ……. so I looked into it a bit further this morning.


According to this article the laptop was stolen from a car in the Raleigh area in DECEMBER. North Carolina has a “victims toolkit” at this address which is geared towards giving people the tools to request a freeze on their credit, notifying the three major credit bureaus, etc. (The report was from mid-January).

Also, people are encouraged to act quickly if they are notified that their information has been compromised.

It’s amazing to me that such large volumes of sensitive data are carried around and assumably NOT kept in an encrypted loop-back or some other protected store. Let’s face it, there ARE many tools for making a file relatively unreadable without a good passphrase. There is no indication in the reporting that I’ve seen that any steps were taken to encrypt the data for just such a possibility.

This get’s me back to something I’ve said many times to folks that say they won’t make a purchase online because they’re concerned about identity theft. These days, we are at the mercy of EVERY company that we do business with (including the state/federal and local governments). There is risk EVERY time you give someone your social security number or let the credit card swipe because more often than not it goes into a database somewhere. If the companies that are keeping the data have lax security or make poor choices, then you’re out of luck.

From the Charlotte observer’s report….

The employee’s car was locked, and she had followed department policies about securing the computer, Brooks told the Observer. The computer contained security features, but Brooks said officials are examining additional software safeguards.

So… I will assume they at least had a login password as part of their policy… I’m afraid that may have been all.

Related Posts

Blog Traffic Exchange Related Posts
  • Another IE security flaw this one could lead to data theft I saw this earlier this afternoon at betanews.com there seems to be a flaw in the way Internet Explorer deals with css that could put your data at risk. According to this article it is a risk combined with Google Desktop. This can be "fixed" by disabling scripting or using......
  • Registrars not verifying contact information on domains? According to a GAO report one of the reasons that phishing and scam websites are because of a lack of enforcement and policing by registrars of accurate contact information. According to their study over 5% of sites had been registered with false data. ~2.5% had been registered with incomplete information.......
  • How common is data theft? According to this securityfix post it's a daily occurance. The email that he cites was from a woman who was informed by a company that a data backup had been "lost track of". There is a web site that chronicles such data security breaches. privacyrights.org. It's certainly worth a look.......
Blog Traffic Exchange Related Websites
  • Free Annual Credit Report Free Annual Credit Report: The Full Story Did you know you can get a free annual credit report?  How often do you check your credit report?  Is it something you set up to do regularly?  It is important to make this part of your regular process for creating wealth in......
  • Look at your Credit Report You can go to annualcreditreport.com and request to view your credit report from each of the three nationwide consumer credit reporting companies: Equifax, Experian and TransUnion. Since each one permits you you view your report annually, you are able to view a different one every four months. I've not seen......
  • Checking Your Credit Report Can Save You Money Many individuals do not check their credit report on a regular basis for a variety of reasons. Some individuals believe that they are careful enough with their personal information and they will never be a victim of identity theft. Other individuals believe that there is nothing you can do to......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site